Collaborate Disseminate
It seems that the default password based key derivation function that is used by PKCS12 to generate a MAC is this one. It is unique to the standard and probably not used anywhere else. Is it possible to use PBKDF2 instead to generate a MAC… Continue reading Can I use PBKDF2 derivation function to generate a MAC in PKCS12 file?
This post has been MOVED to StackOverflow due to lack of answers on Info Security:
https://stackoverflow.com/questions/60960802/securely-encrypt-and-decrypt-files-via-pbe-in-java-jasypt-seems-insecure
Considered solutions were Jasypt a… Continue reading Securely encrypt and decrypt files via PBE in Java (Jasypt seems insecure)
I am designing a basic KMS based on a simple HSM, I only have access to: AES256, SHA256, PBKDF2, HMAC (and combinations like AES256-HMAC-SHA256).
The admin and the users of the system have a personal HSM where the keys are stored and it wo… Continue reading Establish a symmetric key: KDF based on shared secret and random salt or key wrapping?
Imagine an app where any user provides a username and a password. This password is used to generate a ‘strong’ encryption key (for AES encryption) with the PBDKF2 key derivation algorithm. This encryption key is used to encrypt user data i… Continue reading PBKDF2 hash over PBKDF2 key derivation
According to the Wikipedia page for key derivation functions, a KDF’s purpose is to derive a secret key for cryptography:
In cryptography, a key derivation function (KDF) derives one or more secret keys from a secret valu… Continue reading Why are KDFs slow? Is using a KDF more secure than using the original secret?
I am building a system that at some point requires a 256 bit key AES key. I used to feed passphrases through PBKDF2 to derive a key, but then I decided to generate random passwords of 12 words selected out of a set of 2048 wo… Continue reading Deriving a key with PBKDF2 from RFC1751 output
I have a database table with accounts. I’m using PBKDF2 to create hashes from passwords. The passwords are of the correcthorsebatterystaple type, so we assume they are secure and unique. There are no usernames, so I need to b… Continue reading Protect key-streched hashes from rainbow tables?
I am going to store user provided data in database. Confidentiality needs to be guaranteed. Integrity need not be guaranteed (that’s a separate problem to be solved separately).
There is a single strong master password that … Continue reading Should a new key be derived for every row of data or should the same key be used?
In XVWA (Xtreme Vulnerable Web Application) I presented with an PBKDF2 with sha256 and 1000 iteration as such:
<?php
function create_hash($password)
{
// format: algorithm:iterations:salt:hash
$salt = base64_en… Continue reading XVWA PBKDF2 with sha256 and 1000 iteration
The example I’m working on is this:
i store the user password using Argon2 in my database
and then use PBKDF2 to derive an AES key from the user password , and store only the salt used in PBKDF2, i use the output from this … Continue reading Is it safe to use 2 password derivation functions to one password?